From 7c63a3b840e2b98c0bf340459cf1d007cd63541b Mon Sep 17 00:00:00 2001 From: bsiegert Date: Thu, 19 Nov 2015 20:39:15 +0000 Subject: Pullup ticket #4853 - requested by he devel/nss: security fix Revisions pulled up: - devel/nss/Makefile 1.103 - devel/nss/distinfo 1.52 --- Module Name: pkgsrc Committed By: ryoon Date: Tue Nov 3 16:55:07 UTC 2015 Modified Files: pkgsrc/devel/nss: Makefile distinfo Log Message: Update to 3.20.1 Changelog: The following security-relevant bugs have been resolved in NSS 3.20.1. Users are encouraged to upgrade immediately. * Bug 1192028 (CVE-2015-7181) and Bug 1202868 (CVE-2015-7182): Several issues existed within the ASN.1 decoder used by NSS for handling streaming BER data. While the majority of NSS uses a separate, unaffected DER decoder, several public routines also accept BER data, and thus are affected. An attacker that successfully exploited these issues can overflow the heap and may be able to obtain remote code execution. --- devel/nss/Makefile | 4 ++-- devel/nss/distinfo | 9 +++++---- 2 files changed, 7 insertions(+), 6 deletions(-) diff --git a/devel/nss/Makefile b/devel/nss/Makefile index e53bbe6b99b..ed6ea3c1ff1 100644 --- a/devel/nss/Makefile +++ b/devel/nss/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.100 2015/08/20 10:54:24 ryoon Exp $ +# $NetBSD: Makefile,v 1.100.2.1 2015/11/19 20:39:15 bsiegert Exp $ DISTNAME= nss-${NSS_RELEASE:S/.0$//} -NSS_RELEASE= 3.20.0 +NSS_RELEASE= 3.20.1 CATEGORIES= security MASTER_SITES= ${MASTER_SITE_MOZILLA_ALL:=security/nss/releases/NSS_${NSS_RELEASE:S/.0$//:S/./_/g}_RTM/src/} diff --git a/devel/nss/distinfo b/devel/nss/distinfo index f1c08df5d73..e00a5691a24 100644 --- a/devel/nss/distinfo +++ b/devel/nss/distinfo @@ -1,8 +1,9 @@ -$NetBSD: distinfo,v 1.50 2015/08/20 10:54:24 ryoon Exp $ +$NetBSD: distinfo,v 1.50.2.1 2015/11/19 20:39:15 bsiegert Exp $ -SHA1 (nss-3.20.tar.gz) = f5830e2db3303965abad66d9a3318a059c706387 -RMD160 (nss-3.20.tar.gz) = 69064b78a2db3de42018d77874c28a9c9656cca7 -Size (nss-3.20.tar.gz) = 6955552 bytes +SHA1 (nss-3.20.1.tar.gz) = 6f123d05a8184cdc5ab4c903250f3c9b5b96dea4 +RMD160 (nss-3.20.1.tar.gz) = f7cd3b4d84ecad80c22126db49ce46cff1d64d42 +SHA512 (nss-3.20.1.tar.gz) = c8db693a81b8ddb4d2a742c2fce3f23dd40736e54c55c0de072f84572fcdad8fb7646e4b8ea696e4c97ea6c9cb0fa144f573f8776c2839eb25c4075b50d01d74 +Size (nss-3.20.1.tar.gz) = 6958956 bytes SHA1 (patch-am) = ee4c4beeb120397852fc4b06b7dd54534d0d5ac5 SHA1 (patch-an) = 4ab22f2a575676b5b640bc9a760b83eb05c75e69 SHA1 (patch-md) = 0a09fd2abb8674a2d301f1b6a5331af5db94178f -- cgit v1.2.3